From: Washington Business Journal
The days of reports required by the Federal Information Security Management Act may finally be long gone as a new system takes hold, Federal Times reports.
Steve VanRoekel, the U.S. chief information officer, envisions continuous diagnostics and mitigation systems, known as CDM, to satisfy the requirements of FISMA with the push of a button. Agencies currently report cybersecurity status updates every three years, as required by FISMA, which is widely viewed within the federal cybersecurity community as outdated and a waste of resources. CDM will give relief from compliance burdens such as audits, evaluations and reports.
Leave a Reply